CVE-2024-0565: Kernel: cifs filesystem decryption improper input validation remote code execution vulnerability in function receive_encrypted_standard of client
Description
An out-of-bounds memory read flaw was found in receive_encrypted_standard in fs/smb/client/smb2ops.c in the SMB Client sub-component in the Linux Kernel. This issue occurs due to integer underflow on the memcpy length, leading to a denial of service.
Classification
CVE ID: CVE-2024-0565
CVSS Base Severity: MEDIUM
CVSS Base Score: 6.8
CVSS Vector: CVSS:3.1/AV:A/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
Problem Types
Integer Underflow (Wrap or Wraparound)Affected Products
Vendor: , Red Hat
Product: , Red Hat Enterprise Linux 8, Red Hat Enterprise Linux 8.6 Extended Update Support, Red Hat Enterprise Linux 8.8 Extended Update Support, Red Hat Enterprise Linux 9, Red Hat Enterprise Linux 9.2 Extended Update Support, Red Hat Virtualization 4 for Red Hat Enterprise Linux 8, RHOL-5.7-RHEL-8, Red Hat Enterprise Linux 6, Red Hat Enterprise Linux 7
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.07% (probability of being exploited)
EPSS Percentile: 20.9% (scored less or equal to compared to others)
EPSS Date: 2025-06-14 (when was this score calculated)
Stakeholder-Specific Vulnerability Categorization (SSVC)
SSVC Exploitation: none
SSVC Technical Impact: total
SSVC Automatable: false
References
https://nvd.nist.gov/vuln/detail/CVE-2024-0565https://access.redhat.com/errata/RHSA-2024:1188
https://access.redhat.com/errata/RHSA-2024:1404
https://access.redhat.com/errata/RHSA-2024:1532
https://access.redhat.com/errata/RHSA-2024:1533
https://access.redhat.com/errata/RHSA-2024:1607
https://access.redhat.com/errata/RHSA-2024:1614
https://access.redhat.com/errata/RHSA-2024:2093
https://access.redhat.com/errata/RHSA-2024:2394
https://access.redhat.com/security/cve/CVE-2024-0565
https://bugzilla.redhat.com/show_bug.cgi?id=2258518
https://www.spinics.net/lists/stable-commits/msg328851.html